Lexington, Massachusetts
Job Description
Location: Lexington, Massachusetts, USA
Remote Work: Hybrid
Job Number: R0152387
Information Assurance Cyber Lead, Senior
Key Role:
Support AF efforts, leveraging experience in information security and cybersecurity guided by the NIST Risk Management Framework (RMF) during the Assessment and Authorization process. Provide cybersecurity advice and knowledge in the DevSecOps design, development, and implementation, provide guidance in the modification and review of existing ATO documentation, and proactively provide insight into the documentation packets for ATO. Communicate risks with the internal team and client and integrate information assurance solutions within architecture, system, or system components for use within applications, data centers, networks, and enclave environments. Participate in information systems risk assessments, continuous monitoring, and design of security mitigation or remediation solutions identified risks. Ensure the architecture and design of DoD information systems (IS) are functional and secure and utilize experience and judgment to plan and accomplish enclave security-related goals. Support system or network designs that encompass multiple data centers or networks, including those with differing data protection and classification requirements. Report to the internal Team Lead and Security Controls Assessor (SCA) for IA issues and concerns with separate reporting to senior management for network operational requirements, as necessary. This position is a hybrid role with a combination of working at a Booz Allen office or client site and working remotely.
Basic Qualifications:
3+ years of experience in cybersecurity
Experience dealing with risk management as it relates to systems, including with security controls and POAMs, and using Enterprise Mission Assurance Support Services (eMASS)
Experience creating and reviewing SSPs, hardware and software inventory lists, and Interface Control Documents
Experience with DevSecOps and Security Technical Implementation Guides (STIGs) and STIG Viewer
Knowledge of AF and DoD cybersecurity policies and ATO/ATC processes
Knowledge of NIST SP 800-53 Rev. 4 and Rev. 5 and NIST SP 800-37 Rev. 1
Ability to design and discuss system strategies for cloud computing platforms, applications, and networks
Ability to generate RMF security documentation to support ATO/ATC/COOP
Secret clearance
HS diploma or GED
Additional Qualifications:
Experience working with AF
Experience working in a team environment
Experience managing RMF independently and collaboratively
Clearance:
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.
We’re an equal employment opportunity/affirmative action employer that empowers our people to fearlessly drive change – no matter their race, color, ethnicity, religion, sex (including pregnancy, childbirth, lactation, or related medical conditions), national origin, ancestry, age, marital status, sexual orientation, gender identity and expression, disability, veteran status, military or uniformed service member status, genetic information, or any other status protected by applicable federal, state, local, or international law.
Booz Allen / Equal Opportunity Employer
JBBAH-R0152387 2023.03.10
FVR05 SKUUU, Lexington, Massachusetts Lexington, Massachusetts ZC ZCCX
